vulnerability
Red Hat: CVE-2016-9637: Important: xen security update (RHSA-2016:2963)
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 4 | (AV:L/AC:H/Au:N/C:P/I:P/A:P) | 2016-12-07 | 2016-12-21 | 2018-01-17 |
Severity
4
CVSS
(AV:L/AC:H/Au:N/C:P/I:P/A:P)
Published
2016-12-07
Added
2016-12-21
Modified
2018-01-17
Description
The (1) ioport_read and (2) ioport_write functions in Xen, when qemu is used as a device model within Xen, might allow local x86 HVM guest OS administrators to gain qemu process privileges via vectors involving an out-of-range ioport access.
Solution(s)
redhat-upgrade-xenredhat-upgrade-xen-debuginforedhat-upgrade-xen-develredhat-upgrade-xen-libs
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.